In this section, we will explore how to use PowerShell to automate tasks related to Active Directory (AD). Automating AD tasks can save time, reduce errors, and ensure consistency across your environment. We will cover the following topics:

1. Introduction to Active Directory Automation
2. Connecting to Active Directory
3. Managing Users
4. Managing Groups
5. Managing Organizational Units (OUs)
6. Practical Exercises

Active Directory (AD) is a directory service developed by Microsoft for Windows domain networks. It is used for managing permissions and access to network resources. PowerShell provides a set of cmdlets specifically designed for interacting with AD, which are part of the Active Directory module.

• Cmdlets: PowerShell commands designed to perform specific tasks.
• Active Directory Module: A PowerShell module that includes cmdlets for managing AD.

Before performing any AD tasks, you need to import the Active Directory module and establish a connection to your AD environment.

• Import-Module ActiveDirectory: Loads the Active Directory module into your PowerShell session.
• Get-Module -Name ActiveDirectory: Confirms that the module is loaded.

• New-ADUser: Cmdlet to create a new AD user.
• -Name: Full name of the user.
• -GivenName: First name of the user.
• -Surname: Last name of the user.
• -SamAccountName: User's logon name.
• -UserPrincipalName: User's principal name (email).
• -Path: The OU where the user will be created.
• -AccountPassword: Sets the user's password.
• -Enabled: Enables the user account.

• Set-ADUser: Cmdlet to modify an existing AD user.
• -Identity: Specifies the user to modify.
• -Title: Sets the user's job title.
• -Department: Sets the user's department.

• New-ADGroup: Cmdlet to create a new AD group.
• -Name: Name of the group.
• -GroupScope: Scope of the group (Global, DomainLocal, Universal).
• -GroupCategory: Category of the group (Security, Distribution).
• -Path: The OU where the group will be created.

• Add-ADGroupMember: Cmdlet to add members to a group.
• -Identity: Specifies the group.
• -Members: Specifies the users to add.

• New-ADOrganizationalUnit: Cmdlet to create a new OU.
• -Name: Name of the OU.
• -Path: The path where the OU will be created.

• Move-ADObject: Cmdlet to move an AD object.
• -Identity: Specifies the object to move.
• -TargetPath: Specifies the destination OU.

1. Create a new user named "Jane Smith" with the username "jsmith".
2. Add "Jane Smith" to the "Developers" group.

Solution:

1. Create a new OU named "Finance".
2. Move the user "John Doe" to the "Finance" OU.

Solution:

In this section, we covered the basics of automating Active Directory tasks using PowerShell. We learned how to connect to AD, manage users, groups, and organizational units, and performed practical exercises to reinforce these concepts. Automating AD tasks with PowerShell can greatly enhance your efficiency and ensure consistency in your environment. In the next module, we will explore PowerShell remoting, which allows you to manage remote systems using PowerShell.